[midPoint] LDAP connector SSL
Devin Rosenbauer
devin at identityworksllc.com
Tue Nov 17 19:07:53 CET 2015
Hey all,
I'm working on deploying a demo LDAP connector to an OpenDJ LDAP instance.
I've got everything set up and working great in non-SSL mode. When I switch
the connection security configuration property to "ssl", the connection
times out every time, with this root cause stack trace:
Caused by: org.apache.directory.api.ldap.model.exception.LdapException:
TimeOut occurred
at
org.apache.directory.ldap.client.api.LdapNetworkConnection.writeRequest(LdapNetworkConnection.java:4138)
~[api-all-1.0.0-M31-e1.jar:1.0.0-M31-e1]
at
org.apache.directory.ldap.client.api.LdapNetworkConnection.bindAsync(LdapNetworkConnection.java:1287)
~[api-all-1.0.0-M31-e1.jar:1.0.0-M31-e1]
at
org.apache.directory.ldap.client.api.LdapNetworkConnection.bind(LdapNetworkConnection.java:1185)
~[api-all-1.0.0-M31-e1.jar:1.0.0-M31-e1]
at
com.evolveum.polygon.connector.ldap.LdapConnector.bind(LdapConnector.java:1030)
~[connector-ldap-1.4.1.23.jar:na]
After looking through the code, I'm guessing that the SSL filter is
attempting to prompt the non-existent keyboard user to accept or deny the
certificate. I've imported the cert as a trusted certificate into the Java
cacerts file, but I'm not sure that that's what the LDAP connector is using.
Any suggestions?
--
Devin Rosenbauer
Principal Consultant
Identity Works LLC
+1 585 210 3201
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20151117/b3c08eda/attachment.htm>
More information about the midPoint
mailing list